Add live artifacts and Composio connector catalog by mrcfps · Pull Request #381 · nexu-io/open-design

mrcfps · 2026-05-03T15:30:05Z

Summary

Add live artifact contracts, daemon store/routes/CLI tooling, MCP/tool-token integration, and refresh support.
Add Composio-backed connector catalog, credential/config flows, connector tool execution, and connector browsing UI.
Update web file/artifact surfaces, i18n strings, specs, and tests for the new live artifact + connector workflows.

Validation

pnpm install
pnpm typecheck
pnpm test

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: ac920ae57e

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Avoid marking refresh candidates failed after snapshot or state persistence errors by deferring live artifact mutations until the durable refresh metadata is written. Also align connector OAuth callback host validation with daemon loopback handling.\n\nGenerated-By: looper 0.5.4 (runner=fixer, agent=opencode)

…s-spec Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: ee1c94cbd6

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Require loopback daemon validation before connector connect side effects and only clear provider-owned connector statuses during credential reset. Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: e9984f90cc

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: e9984f90cc

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

chatgpt-codex-connector · 2026-05-04T15:43:30Z

💡 Codex Review

open-design/apps/daemon/src/connectors/routes.ts

Line 404 in e9984f9

    
           app.delete('/api/connectors/:connectorId/connection', async (req: Request, res: Response) => {

Gate connector disconnect behind local-daemon checks

Apply requireLocalDaemonRequest to the disconnect route as well. DELETE /api/connectors/:connectorId/connection currently executes without the loopback peer/host validation used on connect/refresh endpoints, so in deployments started with a non-loopback bind (for example --host 0.0.0.0), any network client that can reach the daemon can forcibly disconnect connectors and clear stored credentials. This is a state-changing endpoint and should use the same local-only guard as other connector mutation routes.

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

chatgpt-codex-connector · 2026-05-04T15:43:36Z

💡 Codex Review

open-design/apps/daemon/src/connectors/routes.ts

Line 404 in e9984f9

    
           app.delete('/api/connectors/:connectorId/connection', async (req: Request, res: Response) => {

Gate connector disconnect behind local-daemon checks

Apply requireLocalDaemonRequest to the disconnect route as well. DELETE /api/connectors/:connectorId/connection currently executes without the loopback peer/host validation used on connect/refresh endpoints, so in deployments started with a non-loopback bind (for example --host 0.0.0.0), any network client that can reach the daemon can forcibly disconnect connectors and clear stored credentials. This is a state-changing endpoint and should use the same local-only guard as other connector mutation routes.

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Require local daemon request validation before connector disconnect side effects. Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 21c16a94f8

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: dd26a38486

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Route the live-artifacts MCP server before the generic MCP CLI so od mcp live-artifacts starts the dedicated server instead of failing generic argument parsing.\n\nGenerated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: f6b299c549

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Allow JSON Schema integer connector inputs while preserving fractional-value validation so generated connector tool schemas accept valid page sizes and limits. Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 3b2017beb0

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: a4c0aa887f

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

chatgpt-codex-connector · 2026-05-05T07:31:49Z

+  if (name === 'live_artifacts_create') {
+    return await requestJson('/api/tools/live-artifacts/create', { method: 'POST', body: JSON.stringify({ input: args.input ?? {} }) });


Forward template/provenance fields for MCP artifact writes

The MCP bridge only posts {"input": ...} for live_artifacts_create (and similarly nests only artifactId + input for update), but the daemon tool routes read templateHtml/provenanceJson from the top-level request body. Because the MCP tool schemas also set additionalProperties: false at the top level, MCP callers cannot pass those fields at all, so ACP/MCP artifact create-update flows cannot persist custom template.html or provenance.json and silently fall back to defaults.

Useful? React with 👍 / 👎.

chatgpt-codex-connector · 2026-05-05T07:31:49Z

+  await writeLiveArtifactRefreshState(paths, nextState);
+  await Promise.all([


Persist refresh state only after artifact files are durable

This records lastCommittedRefreshId before writing artifact.json, data.json, preview HTML, and provenance files. If any of those atomic writes fail (e.g., disk full or permission error), the refresh is still marked committed in refresh state and then handled as failed upstream, leaving commit metadata out of sync with live artifact files and skewing stale/ordering logic that relies on lastCommittedRefreshId.

Useful? React with 👍 / 👎.

mrcfps added 30 commits April 30, 2026 15:45

docs: add live artifacts implementation spec

e375a1a

docs: align live artifacts implementation plan

097dc68

Ralph iteration 1: work in progress

dbe6660

Ralph iteration 2: work in progress

b6507e4

Ralph iteration 3: work in progress

9d1ab65

Ralph iteration 4: work in progress

701a1e7

Ralph iteration 5: work in progress

aae8e68

Ralph iteration 6: work in progress

ecd88dd

Ralph iteration 7: work in progress

893b664

Ralph iteration 8: work in progress

8b0d522

Ralph iteration 9: work in progress

7dff67e

Ralph iteration 10: work in progress

9b2eb99

Ralph iteration 11: work in progress

0323f4b

Ralph iteration 12: work in progress

4c94968

Ralph iteration 13: work in progress

63e8a6a

Ralph iteration 14: work in progress

0ba0c9b

Ralph iteration 15: work in progress

d86c6fa

Ralph iteration 16: work in progress

2a9283b

Ralph iteration 17: work in progress

4586dd8

Ralph iteration 18: work in progress

acc5816

Ralph iteration 19: work in progress

fa77916

Ralph iteration 20: work in progress

9b993fc

Ralph iteration 21: work in progress

e054dce

Ralph iteration 22: work in progress

1e2df1d

Ralph iteration 23: work in progress

b7fa8e4

Ralph iteration 24: work in progress

ae71010

Ralph iteration 25: work in progress

8e36ed6

Ralph iteration 26: work in progress

33b8534

Ralph iteration 27: work in progress

fc12e73

Ralph iteration 28: work in progress

896d896

Adjust connector gate positioning

ac920ae

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/connectors/routes.ts Outdated

mrcfps added 4 commits May 4, 2026 21:41

Merge remote-tracking branch 'origin/main' into feature/live-artifact…

ff228ce

…s-spec Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Improve connector search relevance

e8b471b

Merge main into feature/live-artifacts-spec

ee1c94c

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/connectors/routes.ts Outdated

Comment thread apps/daemon/src/connectors/service.ts Outdated

fix(daemon): harden connector connection state

e9984f9

Require loopback daemon validation before connector connect side effects and only clear provider-owned connector statuses during credential reset. Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/connectors/routes.ts Outdated

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/connectors/routes.ts Outdated

mrcfps added 2 commits May 4, 2026 23:51

fix(daemon): guard connector disconnect route

1e84f1b

Require local daemon request validation before connector disconnect side effects. Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Merge main into feature/live-artifacts-spec

21c16a9

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/server.ts Outdated

fix(daemon): guard composio config updates

dd26a38

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/cli.ts

fix(daemon): dispatch live artifacts mcp first

f6b299c

Route the live-artifacts MCP server before the generic MCP CLI so od mcp live-artifacts starts the dedicated server instead of failing generic argument parsing.\n\nGenerated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector Bot reviewed May 4, 2026

View reviewed changes

Comment thread apps/daemon/src/connectors/service.ts

mrcfps added 2 commits May 5, 2026 01:02

fix(daemon): handle integer connector schemas

d18e00c

Allow JSON Schema integer connector inputs while preserving fractional-value validation so generated connector tool schemas accept valid page sizes and limits. Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Merge main into feature/live-artifacts-spec

3b2017b

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

chatgpt-codex-connector Bot reviewed May 5, 2026

View reviewed changes

Comment thread packages/contracts/src/errors.ts

mrcfps added 7 commits May 5, 2026 09:34

fix: align live artifact refresh error codes

e6a5891

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Merge main into feature/live-artifacts-spec

56eb154

Generated-By: looper 0.5.4 (runner=fixer, agent=opencode)

Fix live artifact connector refresh flow

d484f37

Update live artifact design cards

1c6ca84

Add beta badge to live artifact form

a337b67

Remove live artifact tile model

8b8505d

Fix live artifact refresh sync

a4c0aa8

chatgpt-codex-connector Bot reviewed May 5, 2026

View reviewed changes

		if (name === 'live_artifacts_create') {
		return await requestJson('/api/tools/live-artifacts/create', { method: 'POST', body: JSON.stringify({ input: args.input ?? {} }) });

		await writeLiveArtifactRefreshState(paths, nextState);
		await Promise.all([

Conversation

mrcfps commented May 3, 2026

Summary

Validation

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot commented May 4, 2026

💡 Codex Review

Uh oh!

chatgpt-codex-connector Bot commented May 4, 2026

💡 Codex Review

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

Uh oh!

chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

💡 Codex Review

Uh oh!

chatgpt-codex-connector Bot May 5, 2026

Choose a reason for hiding this comment

Uh oh!

chatgpt-codex-connector Bot May 5, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants